Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2491 4.8 警告
Adjacent 		OpenClaw OpenClaw OpenClawにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-41393 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2492 8.2 重要
Network 		OpenClaw OpenClaw OpenClawにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-41394 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2493 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける暗号化処理の不備に関する脆弱性 CWE-325
暗号化処理の不備 		CVE-2026-41395 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2494 7.8 重要
Local 		OpenClaw OpenClaw OpenClawにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-41396 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2495 9.6 緊急
Network 		OpenClaw OpenClaw OpenClawにおけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2026-41397 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2496 4 警告
Local 		OpenClaw OpenClaw OpenClawにおけるセキュリティ決定の信頼できない入力への依存に関する脆弱性 CWE-807
セキュリティ決定の信頼できない入力への依存 		CVE-2026-41403 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2497 8.8 重要
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41404 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2498 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける不適切な動作順序(早期増幅)に関する脆弱性 CWE-408
不適切な動作順序(早期増幅) 		CVE-2026-41405 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2499 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-41406 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2500 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおけるタイミングの違いに起因する情報漏えいに関する脆弱性 CWE-208
タイミングの違いに起因する情報漏えい 		CVE-2026-41407 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313051 - - - A vulnerability, which was classified as critical, has been found in HuankeMao SCRM up to 0.0.3. Affected by this issue is the function upload_domain_verification_file of the file WxkConfig.php of th… - CVE-2024-9278 2024-09-30 21:45 2024-09-27 Show GitHub Exploit DB Packet Storm
313052 - - - A vulnerability classified as problematic was found in Langflow up to 1.0.18. Affected by this vulnerability is an unknown functionality of the file \src\backend\base\langflow\interface\utils.py of t… CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2024-9277 2024-09-30 21:45 2024-09-27 Show GitHub Exploit DB Packet Storm
313053 - - - A vulnerability classified as problematic has been found in TMsoft MyAuth Gateway 3. Affected is an unknown function of the file /index.php. The manipulation of the argument console/nocache/cmd leads… CWE-79
Cross-site Scripting 		CVE-2024-9276 2024-09-30 21:45 2024-09-27 Show GitHub Exploit DB Packet Storm
313054 - - - A vulnerability was found in jeanmarc77 123solar up to 1.8.4.5. It has been rated as critical. This issue affects some unknown processing of the file /admin/admin_invt2.php. The manipulation of the a… CWE-73
 External Control of File Name or Path 		CVE-2024-9275 2024-09-30 21:45 2024-09-27 Show GitHub Exploit DB Packet Storm
313055 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: btrfs: don't BUG_ON() when 0 reference count at btrfs_lookup_extent_info() Instead of doing a BUG_ON() handle the error by return… NVD-CWE-Other
CVE-2024-46751 2024-09-30 21:45 2024-09-18 Show GitHub Exploit DB Packet Storm
313056 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: spi: intel: Add check devm_kasprintf() returned value intel_spi_populate_chip() use devm_kasprintf() to set pdata->name. This can… CWE-476
 NULL Pointer Dereference 		CVE-2024-46769 2024-09-30 21:44 2024-09-18 Show GitHub Exploit DB Packet Storm
313057 - - - A Local File Inclusion vulnerability exists in parisneo/lollms-webui versions below v9.8. The vulnerability is due to unverified path concatenation in the `serve_js` function in `app.py`, which allow… CWE-29
 Path Traversal: '\..\filename' 		CVE-2024-6394 2024-09-30 17:15 2024-09-30 Show GitHub Exploit DB Packet Storm
313058 - - - Smart-tab Android app installed April 2023 or earlier contains an issue with plaintext storage of a password. If this vulnerability is exploited, an attacker with physical access to the device may re… - CVE-2024-42496 2024-09-30 17:15 2024-09-30 Show GitHub Exploit DB Packet Storm
313059 - - - Smart-tab Android app installed April 2023 or earlier contains an active debug code vulnerability. If this vulnerability is exploited, an attacker with physical access to the device may exploit the d… - CVE-2024-41999 2024-09-30 17:15 2024-09-30 Show GitHub Exploit DB Packet Storm
313060 - - - In Nintendo Mario Kart 8 Deluxe before 3.0.3, the LAN/LDN local multiplayer implementation allows a remote attacker to exploit a stack-based buffer overflow upon deserialization of session informatio… - CVE-2024-45200 2024-09-30 17:15 2024-09-30 Show GitHub Exploit DB Packet Storm